This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4229 Views
  • 0 replies
  • 0 Likes

Resolved! V-Wire in VMware.

I am trying to trial V-Wire for an upcoming requirement . The final goal is to secure a number of VMware VM's on their original IP's [differing subnets ] behind a v-wire. So I have a VM100 which I have assigned 2 interfacesone to a vswitch connected to a virtual PC 192.x.x.5 other to a vswtich connected to a virtual server 192.x.x.10 there's ...

Resolved! Can PA firewalls run multiple OSPF Processes?

Replacing a Cisco ASA fw with a Palo Alto and there is 2 OSPF processes running on the ASA ( 1 & 2 ). Can I run 2 process on a Palo Alto firewall? I've had a look and tried with running seperate VR's but I cant see how I can advertise the OSPF 2 process subnets into OSPF 1. It's really simple on a router -router ospf 1rtr#redistribute ospf...

Global Protect : Authentication Profile based on source IP

Hi,I would like to accomplish the following I have an always on VPN configured to use user-id password at logon.When the user is on one of our remote sites with know public IP's I want to use only LDAP in all other situation when he is external I want RADIUS(MFA). Can I make an authentication profile and link it to source IP? Kind regards, Fre...

GOMEZZZ by L2 Linker
  • 5449 Views
  • 4 replies
  • 0 Likes

External Dynamic List Issue OS 9.0.4

Dear Friend, I have configured external dynamic list on PAN OS 9.0.4. When I add new URL selecting IP List like http://panwdbl.appspot.com/lists/bruteforceblocker.txt it's no't adding. Given the error as follows. But if i change it's to URL List its working.But in PAN OS 7.1.14 its capable to add. please support ASAP. ThanksLakshitha. Not Wor...

Capture1.JPG
clipboard_image_0.png

Regarding application traffic passing through the PA, the mobilephone cannot be accessed, and the co

Hi support, The situation is this. After the normal traffic passes through the PA, it goes to the nginx proxy server in the DMZ. The nginx then sends the traffic to the back-end server, and finally the server sends the traffic to the nginx proxy server. The nginx then sends the traffic to the PA, and the PA is finally given to the user. Howe...

Minemeld install on Ubuntu 18.04 issue

Hi All, I have installed minemeld on Ubuntu 18.04 using Ansible Playbook. I have followed the instuctions on https://github.com/PaloAltoNetworks/minemeld-ansible#howto-on-ubuntu-1804 and rebooted the device but I get the Error Checking Credentials: Bad Gateway error. Looking at the supervisorrd.conf status I see minemeld-web in a fatal statu...

a.jones by L3 Networker
  • 4353 Views
  • 1 replies
  • 1 Likes

Resolved! Wildfire Private Cloud(WF500) license..

Hello All,We have PA-3250 which is having wildfire license, we have wildfire private cloud appliance as well and we have connected our existing firewall PA-3250 to wildfire cloud. Now we need to purchase PA-220 . Do we still require wildfire license in PA-220 when we already have private cloud appliance for wildfire. Thanking You in advance for...

OmPrasad by L1 Bithead
  • 4277 Views
  • 3 replies
  • 0 Likes

BI- DIRECTINAL NAT IN PALO ALTO

BI- DIRECTINAL NAT IN PALO ALTO Go to Policies > NAT > AddCreate a NAT Rule:Name the rule as per your convivence.Select the source zone as LANDestination zone as WANInterface as the WAN (exit interface)Service as the preferred port.Source ip address as the internal LAN IP.Destination ip address as any.Now in translated packet, Select Stati...

What apps and services are used for Meraki Cloud?

I can't seem to get the policy right for my Meraki APs to check in with the meraki cloud. I have allowed DNS, Ping, Meraki-cloud-controller using any port and allowed to *.meraki.com and *.opendns.com. Still see stuff hit my deny. Anyone know the correct combo for a policy?

Resolved! PA 5220 Packet Descriptor Max value

When I run show running resource monitor. I see packet descriptor max value most of time above 80 like in 90's. sometimes 100 100. Packet descriptor average value is still under 80.We have ssl decryption enabled on the PA.Also we have decrypt mirror configured. What can be reason that packet descriptor is going over 90 so often? Mike

MP18 by Cyber Elite
  • 8576 Views
  • 8 replies
  • 0 Likes

PA3020 fans always running at 100% speed?

First thing I noticed when I plugged this in was that it's very loud. Normally a device spins down the fans when it's at a cool temperature (which is pretty much all servers and appliances from the last 10 years).So is there any way to change the fan speed?If not, can I request this feature?

Maxstr by L3 Networker
  • 10384 Views
  • 9 replies
  • 0 Likes

Disable Application Packet capture

I am having firewall managed using Panorama . I am planning to disable application packet capture on specific device . Can i do using panorama or need to do from individual firewall. Thanks

deepak12 by L3 Networker
  • 2204 Views
  • 1 replies
  • 0 Likes

Tackling Google Stadia

Greetings all, As I'm sure most are aware Google launched Stadia this week. Has anyone had any luck with blocking access to this service without hindering the use of other Google resources? I know this will be a temp fix due to eventually it will be present in apps and threats but any help/advice would be appreciated.

Resolved! White-list FTP Application

I did created a policy to block "File-sharing" applications with application-filter method.This policy is very successful, but we need to white-list the FTP application. Please advise how to fulfill the blocking and at the same time allow FTP. Thanks.

  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks